AWS_IAM_42
Verify that password policy is enabled for the account. PCI-DSS Section 8.2, 8.3 Verify that PCI-DSS password policy requirements are configured and enforced.
Setting a password complexity policy increases account resiliency against brute force login attempts. Perform the following to set the password policy as prescribed:
1. log in to AWS Console (with appropriate permissions to View Identity Access Management Account Settings)
2. Go to IAM Service on the AWS Console
3. Click on Account Settings on the Left Pane
4. Set the minimum password length to 7.
5. Click Apply password policy” We recommend that a strong password policy be set for IAM users. 
Want to Know More?
Learn how our partners are managing their cloud security and compliance with Cloudlytics.
I hereby accept the GDPR and Privacy Policy, by subscribing to the newsletters.